Security

Reply
Contributor I

How can the switch know if ClearPass is online

Hi,

Is there a mechanism by which the switch can know if the ClearPass server is online and available at any given time.

The idea is if the switch tries to authenticate a client against ClearPass but is down and unreachble, so the client will be put into a guest vlan and wait for the server to be back online but my question is how would the switch know if the clearpass is online, is there any  keepalive mechanism between the switch and the server? If yes please point me to some documentation about it.

 

Thanks

Guru Elite

Re: How can the switch know if ClearPass is online

Most network devices will mark a RADIUS server out of service if X number of requests timeout. It really has nothing do to with CPPM and the config varies by switch vendor. Some vendors have the ability to generate bogus RADIUS requests.

| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Contributor I

Re: How can the switch know if ClearPass is online

NIce, thanks for the response. Could you please give a response to another of my question I posted couple of days ago.

https://community.arubanetworks.com/t5/Security/Default-destination-redirect-issue/td-p/553247

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: